ISO 27001 and ISO 9001 Support and Management
Managing ISO
At Spritzmonkey we not only understand what it takes to achieve certification to ISO 27001 or ISO 9001, but also that your ISO management system is for life not just for Christmas, and all of the processes established during the project need to continue once the certificate goes on the wall.
Need help?
Please contact us to arrange a telephone or face-to-face appointment to discuss your needs.
How can we help?
Spritzmonkey can provide the skills and knowledge required to deliver a successful programme to manage certification to the standard.
By working with an experienced consultant, you can:
Free up in-house resources to do what they do best - running your business
Use our experience to avoid over-complicating the process
Reduce cost and effort over the life-cycle of certification
ISO 27001 Support and Management
Spritzmonkey can either provide a full outsourced service to maintain your organisation's Information Security Management System post-ISO 27001 certification, or provide assistance to your in-house team.
SMEs in particular are unlikely to need a full-time Information Security Manager. By choosing us you gain expert level assistance immediately without the need for recruitment and/ or training.
All contracts are tailored to the needs and size of the customer organisation and if you are a growing business our service will scale with you.
Full outsourcing may include:
Investigating security incidents
Acting as the subject matter expert for security advice to business
Conducting annual risk assessments
Coordinating the internal audit schedule
Carrying out internal audits
Liaising with an external audit body
Maintaining the improvement log
Chairing management review meetings
Maintaining policies
Assistance for your staff may include:
Coaching and mentoring of your staff
Burst support for peaks of workload
Carrying out internal audits
Carrying out supplier audits
Any other support needed
ISO 9001 Support and Management
Spritzmonkey can either provide a full outsourced service to manage your organisation's Quality Management System (QMS) post ISO 9001 certification, or provide assistance to your in-house team.
SMEs in particular are unlikely to need a full-time Quality Manager. By choosing us you gain expert level assistance immediately without the need for recruitment and/or training.
All contracts are tailored to the needs and size of the customer organisation and if you are a growing business our service will scale with you.
The service could be a full outsource or assistance and peak workload assistance for your own staff.
Full outsourcing may include:
Investigating process issues
Acting as subject matter expert for advice to business
Conducting annual SWOT or PEST analysis
Coordinating the internal audit schedule
Carrying out internal audits
Liaising with an external audit body
Maintaining the improvement log
Chairing management review meetings
Maintaining policies
Assistance for your staff may include:
Coaching and mentoring of your staff
Burst support for peaks of workload
Carrying out internal audits
Carrying out supplier audits
Any other support needed
Supplier Security and Supplier Audits
If you have invested a lot of time and money ensuring that you have the right security controls in your own business, it is essential to ensure that whenever suppliers are engaged, security is effectively maintained. Your security is only as good as the weakest link in the supply chain. If your supplier has an externally assessed certification for security this may be straightforward. In other cases it may be sensible to undertake a supplier audit to verify that the expected controls are being effectively implemented.
Our consultants can undertake the supplier audits on your behalf, firstly gaining a thorough understanding of your requirements. If needed we can work with you to develop your processes for supplier management and selection so that information security is covered effectively using established risk-based techniques and best practice.